 Lex LuthorPremium,Mod
join:2000-09-17
Hicksville, NY
kudos:3
OptimumOnline
Users find Hot Deals
Users find Hot Dea..
Requests for Hot D..
| IE6 and Cookies ok, IE6 final is out (see ms help forum) and I took the plunge.
I was one of the people using the following method:
Block all cookies in IE security settings for the internet zone.
Add sites I wanted to allow cookies into my trusted zone.
What do you guys suggest doing in IE6 with the new cookie handling?
I went to the privacy page in the options. Clicked advanced to override the new cookie handling. Chose to block all 1st and 3rd party cookies and then clicked the edit button to add domains to allow cookies.
That seems to work fine and I guess I'll take the sites out of my trusted zone.
Only thing that I don't like is that I now have to add an entire zone. Before I only allowed cookies for groups.yahoo.com, now I have to allow it all over yahoo.com
Anyone have any better ideas (please no 3rd party cookie programs in this discussion, I've been through that before) on how to do this? Is there a new cookie setting that might do what I want easier?
Thanks! |
|
 BlitzenZeusBurnt Out CynicPremium
join:2000-01-13
kudos:2
 ·Frontier FiOS
| I use the low setting to block all 3rd party cookies. I permit cookies in my Internet and Trusted Zone, but I use a cookie manager that is part of my firewall.
However my big worry isn't cookies, its allowing scripting to sites, and only sites in my 'trusted' can run scripts.
In the advanced of the privacy tab just block all 3rd party, and permit the rest. The zone preferences will still be the rule when it comes to if you want cookies permitted or not. |
|
Lex LuthorPremium,Mod
join:2000-09-17
Hicksville, NY
kudos:3 Host:
OptimumOnline
Users find Hot Deals
Users find Hot Dea..
Requests for Hot D..
| I really don't even want 1st party cookies unless I allow it.
Also, I don't understand how the zone prefs will still rule when it comes to cookies. There is nothing at all about cookies in the custom level section of the zones. The only thing about cookies is in the privacy tab now. |
|
BlitzenZeusBurnt Out CynicPremium
join:2000-01-13
kudos:2 Reviews:
·Frontier FiOS
| Your right... I over looked that! I thought the setting was still there.
Maybe you could use the prompt options, and it might allow you to add them to the list of sites not permitted to put cookies on your system? It would be something to test? |
|
 R2R NotPremium,MVM
join:2000-09-18
Long Beach, CA
kudos:1 | reply to Lex Luthor
They eliminated the per Zone Cookies rules??? Arrggghhh!! I do not like that. And you have to enter the entire site??
I was hoping IE6 would have been an improvement in this area, but this sounds like a step back.
I assume by this posting IE6 is out and no longer a "public preview" (beta) now? |
|
BlitzenZeusBurnt Out CynicPremium
join:2000-01-13
kudos:2 | Full release.... Just check the MS forum  |
|
Lex LuthorPremium,Mod
join:2000-09-17
Hicksville, NY
kudos:3 Host:
OptimumOnline
Users find Hot Deals
Users find Hot Dea..
Requests for Hot D..
| reply to R2
Yes, R2 it's final.
Ok...looks like I am the guinea pig.
Anyhow......looks like there is little reason to be alarmed from my testing. Seems to be working just as blitzen said, even though he didn't realize the cookies aren't in the zone settings.
I went to the privacy tab, clicked advanced, blocked all 1st party and 3rd party cookies. I allow session cookies, but that's not important here.
I did NOT add sites to the edit button on the privacy page.
I still have the sites I want cookies for in my trusted zone.
I deleted my cookies for staples.com.
Staples.com is in my trusted zone.
I went to staples and could browse items.
I deleted the cookies again and removed staples.com from my trusted zone.
I could not browse items now and with the new ie, you get a little icon on the bottom status bar showing that a cookie was blocked.
Seems to be working just fine. I guess maybe it assumes the trusted zone will want cookies?! I don't really know...it's weird, but works exactly as before.
I'll keep doing some more testing, but seems to be what I want.
I wonder what all the new settings do? I guess that give you some protection against bad cookies, but I'd just as well control the whole thing myself. I only have maybe 20 sites in my trusted zone, so it keeps the unecessary cookies way down. I guess I could have more "safe" cookies on my system if I used the new settings, but why?
Let me know what you guys find out.
BTW, seems very nice so far. No major changes, easy install, all working well..knock on wood. |
|
|
|
 RyanPremium
join:2001-03-03
Quincy, MA | reply to Lex Luthor
I downloaded ie 6 for the first time and I really like it. Esspecially the features added onto outlook express. Lex what setting do you have for the cookies to do that? High? |
|
Lex LuthorPremium,Mod
join:2000-09-17
Hicksville, NY
kudos:3 Host:
OptimumOnline
Users find Hot Deals
Users find Hot Dea..
Requests for Hot D..
| I suppose high might work, but I blew off the premade settings altogether and clicked privacy tab/advanced/override and then block/block.
Seems as if only sites in my trusted zone can put cookies on my system, just as with ie5.5. I still don't know why though since there are no cookie settings in the zones, but it does work.
[text was edited by author 2001-08-27 20:58:56] |
|
R2R NotPremium,MVM
join:2000-09-18
Long Beach, CA
kudos:1
| reply to Lex Luthor
Thanks. Downloading now. I will take a look at this in more detail -- but maybe tomorrow... ___________________
Lex, I have to wonder if the old settings are still working. Only, MS changed the GUI so you no longer can set these under Internet Options | Security | Sites.
Your registry is likely the same as it was under IE5.5 and perhaps the registry settings still remain functional...
I will back up my registry NOW (before IE6 installs) and see what it adds...
[text was edited by author 2001-08-27 21:08:39] |
|
BlitzenZeusBurnt Out CynicPremium
join:2000-01-13
kudos:2 Reviews:
·Frontier FiOS
| reply to Lex Luthor
Looks like any site in your trusted zone can bypass the cookie filter 
Although outside sites not in the trusted zone are subject to the cookie filter?
I need to do more tests on this... This is undocumented stuff here, and its not working like it said it would. |
|
Lex LuthorPremium,Mod
join:2000-09-17
Hicksville, NY
kudos:3 Host:
OptimumOnline
Users find Hot Deals
Users find Hot Dea..
Requests for Hot D..
| said by BlitzenZeus:
Looks like any site in your trusted zone can bypass the cookie filter
Although outside sites not in the trusted zone are subject to the cookie filter?
I need to do more tests on this... This is undocumented stuff here, and its not working like it said it would.
That's about how it looks to me.
I don't have a problem with sites in my trusted zone bypassing the cookie filter. That's how I'd want it.
Like I said, though, in the first post, there is a place in the privacy/cookie tab to add sites to bypass the cookie filter, but you don't need to put the sites there if they are in your trusted zone.
I don't know if it's a bug or a feature, but it seems to do what I want.
I didn't like having to add the sites in the privacy tab because you can only add a top level domain there and maybe times, I don't want to give the whole domain cookie access.
Post your findings when you know more as well....you too R2, when you get some time. |
|
BlitzenZeusBurnt Out CynicPremium
join:2000-01-13
kudos:2 Reviews:
·Frontier FiOS
| Here's what i've proven:
Sites in the Trusted Zone are permitted by default
Sites in the Restricted Zone are always blocked by default
Sites in the Interent Zone are subject to the Cookie filter
If you add a trusted site to the block list, it will be blocked. If you add a restricted site to the allow list, it will get through.
--
Windows virus found - Remove? (Y)es (S)ure (F)ine (O)K (M)ake it so
[text was edited by author 2001-08-27 21:28:48] |
|
Lex LuthorPremium,Mod
join:2000-09-17
Hicksville, NY
kudos:3 | I agree with your findings. |
|
R2R NotPremium,MVM
join:2000-09-18
Long Beach, CA
kudos:1 | reply to Lex Luthor
OK, I just downloaded. Now all my IE "e's" are powder blue. What an advancement...
I like the image toolbar! Cool.
The only new button up top is for the "Media" Explorer bar and there is a new "Lock the Toolbars" choice (??). "Radio" Toolbar is gone -- presumably replaced with the Media Explorer bar -- which I do not like. It wants to give me a cookie to "windowsmedia.com"...
I have to get home. I'll check out more later. |
|
R2R NotPremium,MVM
join:2000-09-18
Long Beach, CA
kudos:1
| reply to Lex Luthor
OK, the new installation messes with my old Zone set up as well. See how the names are all different.
I have my work cut out for me.
Also, there are some new choices under Advanced:- Enable Install on Demand (2)
- Enable third party Browser extensions
- Check for Signatures on downloaded programs
I think these and some others are all new...
_________
And the https box gets re-checked by default in your Trusted sites.
[text was edited by author 2001-08-27 21:53:46] |
|
Lex LuthorPremium,Mod
join:2000-09-17
Hicksville, NY
kudos:3 | Anyone have any follow up?
I think we pretty much nailed this one.
Blitzen seems to have covered it all pretty clearly in the 2001-08-27 21:27 post.
As far as I'm concerned, it works just the way I'd like it to.
Thanks! |
|
| reply to BlitzenZeus
said by BlitzenZeus:
Looks like any site in your trusted zone can bypass the cookie filter
Although outside sites not in the trusted zone are subject to the cookie filter?
I need to do more tests on this... This is undocumented stuff here, and its not working like it said it would.
I found this in the IE6 help file that helps explain this (and it confirms what your testing showed):
"Your privacy settings only affect Web sites in the Internet zone."
--
Join DSL Reports in fighting CANCER. Use your spare CPU cycles to find a cure. Check out Team Discovery! |
|
R2R NotPremium,MVM
join:2000-09-18
Long Beach, CA
kudos:1
| More info I just got this box. And here is more info (from the Help files):
Internet Explorer allows the use of cookies; however, you can change your privacy settings to specify that Internet Explorer prompt you before placing a cookie on your computer (this enables you to allow or block the cookie); or you can prevent Internet Explorer from accepting any cookies.
You can use the Internet Explorer privacy settings to specify how you want Internet Explorer to handle cookies from individual Web sites or all Web sites. You can also customize your privacy settings by importing a file containing custom privacy settings, or by specifying custom privacy settings for all Web sites or individual Web sites.
Privacy settings only apply to Web sites in the Internet zone.
There are four zones:- Internet zone: By default, this zone contains anything that is not on your computer or an intranet, or assigned to any other zone. The default security level for the Internet zone is Medium. You can change your privacy settings for the Internet zone on the Privacy tab in Internet Options. For more information, click Related Topics.
- Local intranet zone: This zone typically contains any addresses that don't require a proxy server, as defined by the system administrator. These include sites specified on the Connections tab, network paths (such as \\computername\foldername), and local intranet sites (typically addresses that don't contain periods, such as »internal). You can add sites to this zone. The default security level for the Local intranet zone is Medium, therefore, Internet Explorer will allow all cookies from Web sites in this zone to be saved on your computer and read by the Web site that created them.
- Trusted sites zone: This zone contains sites you trust—sites that you believe you can download or run files from without worrying about damage to your computer or data. You can assign sites to this zone. The default security level for the Trusted sites zone is Low, therefore, Internet Explorer will allow all cookies from Web sites in this zone to be saved on your computer and read by the Web site that created them.
- Restricted sites zone: This zone contains sites you don't trust—sites that you're not sure whether you can download or run files from without damage to your computer or data. You can assign sites to this zone. The default security level for the Restricted sites zone is High, therefore, Internet Explorer will block all cookies from Web sites in this zone.
In addition, any files already on your local computer are assumed to be very safe, so minimal security settings are assigned to them. You cannot assign a folder or drive on your computer to a security zone.
[text was edited by author 2001-08-28 15:23:15] |
|
R2R NotPremium,MVM
join:2000-09-18
Long Beach, CA
kudos:1 | reply to Lex Luthor
Re: IE6 and Cookies Microsoft has apparently just removed the user interface that allows you to change these settings. You can still access the registry and modify this scheme -- although I am not sure anyone needs to.
In the default design of IE6, Trusted sites and Restricted sites are managed exactly how you think they SHOULD be managed. The four possible settings are for first-party and third-party cookies, each with Session and Persistent types.
Trusted sites have ALL cookie options set to "0" (Allowed). Restricted sites have ALL cookie options set to "3" (Prohibited). It appears that by default, the Internet zone is set up for first-party cookies to be "0" (Allowed), but third-party cookies (both Session and Persistent) are "1" (Prompt).
If for some reason you wished to alter this arrangement, the entries for each are as follows:
1A02 - 1st-party Persistent
1A03 - 1st-party Session
1A05 - 3rd-party Persistent
1A06 - 3rd-party Session
These can be found in the appropriate numbered keys here:
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones |
|
